Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/VkGPHca_CU8EBTta6ByZJb6sWhA.roa
File: VkGPHca_CU8EBTta6ByZJb6sWhA.roa (raw, json)
Hash identifier: HBixzmD0HxNtWrpWibMbaaZEo3KjyakpLG6JcqUbJzM=
Subject key identifier: 56:41:8F:1D:C6:BF:09:4F:04:05:3B:5A:E8:1C:99:25:BE:AC:5A:10
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 0189BB002D623231CFC7348BEF366E45FEFF
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/VkGPHca_CU8EBTta6ByZJb6sWhA.roa
Signing time: Thu 03 Aug 2023 10:44:58 +0000
ROA not before: Thu 03 Aug 2023 10:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35758
IP address blocks: 213.137.83.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:00:2d:62:32:31:cf:c7:34:8b:ef:36:6e:45:fe:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Aug 3 10:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56418f1dc6bf094f04053b5ae81c9925beac5a10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f4:ef:c8:e9:c2:0e:b8:25:d3:13:9c:4a:79:
94:28:ad:22:6a:14:f4:2d:d2:4e:b2:ca:a5:2f:62:
fd:43:e3:a4:4a:53:88:a7:a0:f7:64:19:22:d3:36:
26:0c:ef:c8:44:25:83:e4:f2:04:e8:32:c5:5d:cb:
f3:5f:7a:49:d0:d6:9a:d8:66:fe:8e:7b:b7:de:76:
32:63:f3:9e:30:44:a8:4a:7d:3e:31:cd:b4:3d:04:
95:f2:e2:bc:cb:bc:0c:00:b7:7f:ec:e5:7b:8a:94:
9b:46:7f:ed:ba:b9:09:26:bc:4e:41:75:33:6c:d8:
9e:a2:af:aa:1d:60:42:65:eb:28:cc:47:4c:c3:f1:
35:cf:aa:9b:46:d7:d3:70:fb:9c:d4:32:4a:07:13:
ee:09:de:fc:05:7f:cf:ec:9f:b0:fc:87:b4:7b:b6:
af:9b:2c:da:93:88:f9:9e:a2:f8:6d:7c:c1:3a:61:
f6:97:88:37:9c:1a:91:37:95:8c:5f:ad:d2:8d:b6:
b0:6d:60:f7:68:02:47:7b:fc:94:bc:6d:c4:17:38:
ad:ad:68:17:8f:87:15:90:48:3f:8d:20:52:ec:c3:
4f:56:3d:96:49:bf:3d:9f:da:b8:14:1c:36:60:84:
52:d5:0d:91:14:cd:58:2d:4c:78:91:a9:2a:9c:6f:
72:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:41:8F:1D:C6:BF:09:4F:04:05:3B:5A:E8:1C:99:25:BE:AC:5A:10
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/VkGPHca_CU8EBTta6ByZJb6sWhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.137.83.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f6:1b:de:2c:fd:56:6d:49:f6:3e:6e:e4:86:ae:9e:c9:67:
51:f6:cb:74:68:26:e5:d0:16:55:81:bb:78:c2:d0:8c:da:e8:
06:a9:2d:31:6b:16:be:0c:80:8b:33:01:a4:e1:66:a4:69:61:
b5:b5:7d:b5:23:15:6e:e0:14:ea:4c:38:e7:2a:84:f7:9a:05:
44:2f:25:c0:ac:82:06:b6:d5:1b:c5:0e:7b:bf:ad:d2:d0:b9:
b0:f2:86:cb:2a:c3:47:1c:e9:ee:0f:e8:58:10:05:f3:a2:a7:
36:90:01:3f:cd:ab:57:73:46:d2:c9:73:4c:07:84:0e:6b:3a:
39:d7:de:29:86:28:b1:7a:b0:86:e4:50:d9:fb:bb:51:4e:e8:
34:85:5f:99:06:f5:d2:0e:9f:dc:48:9b:17:f2:40:3a:0a:87:
6f:28:50:c5:f7:44:7b:12:c1:69:e7:75:9b:b3:26:95:81:a6:
24:c6:d2:59:d7:43:7e:54:97:c6:71:52:a8:55:c5:d8:7d:ac:
29:f9:19:fa:8d:9d:51:a2:4b:ba:bd:f4:48:c4:08:5e:5c:b7:
84:96:c7:14:30:ef:90:02:ec:4b:43:04:0f:70:ca:a7:08:80:
b3:bc:d6:93:b8:86:fa:ca:41:3e:bd:72:84:8d:ad:99:70:39:
3b:15:aa:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYm7AC1iMjHPxzSL7zZuRf7/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZjliMTZhZGYyZmQzMTk4ODg1OTkyMmI0NDU3NDgxZGQ3
ZWVmNDAwHhcNMjMwODAzMTA0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjQxOGYxZGM2YmYwOTRmMDQwNTNiNWFlODFjOTkyNWJlYWM1YTEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4PTvyOnCDrgl0xOcSnmUKK0iahT0
LdJOssqlL2L9Q+OkSlOIp6D3ZBki0zYmDO/IRCWD5PIE6DLFXcvzX3pJ0Naa2Gb+
jnu33nYyY/OeMESoSn0+Mc20PQSV8uK8y7wMALd/7OV7ipSbRn/turkJJrxOQXUz
bNieoq+qHWBCZesozEdMw/E1z6qbRtfTcPuc1DJKBxPuCd78BX/P7J+w/Ie0e7av
myzak4j5nqL4bXzBOmH2l4g3nBqRN5WMX63SjbawbWD3aAJHe/yUvG3EFzitrWgX
j4cVkEg/jSBS7MNPVj2WSb89n9q4FBw2YIRS1Q2RFM1YLUx4kakqnG9yHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFZBjx3GvwlPBAU7WugcmSW+rFoQMB8GA1UdIwQY
MBaAFHD5sWrfL9MZiIWZIrRFdIHdfu9AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUt
YmM2ZGI3MjQ4YWRkLzEvVmtHUEhjYV9DVThFQlR0YTZCeVpKYjZzV2hBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi85NTZkYjktYzhmNy00YjlmLWE1NmUtYmM2ZGI3MjQ4YWRk
LzEvY1BteGF0OHYweG1JaFpraXRFVjBnZDEtNzBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1YlTMA0G
CSqGSIb3DQEBCwUAA4IBAQAa9hveLP1WbUn2Pm7khq6eyWdR9st0aCbl0BZVgbt4
wtCM2ugGqS0xaxa+DICLMwGk4WakaWG1tX21IxVu4BTqTDjnKoT3mgVELyXArIIG
ttUbxQ57v63S0Lmw8obLKsNHHOnuD+hYEAXzoqc2kAE/zatXc0bSyXNMB4QOazo5
194phiixerCG5FDZ+7tRTug0hV+ZBvXSDp/cSJsX8kA6CodvKFDF90R7EsFp53Wb
syaVgaYkxtJZ10N+VJfGcVKoVcXYfawp+Rn6jZ1Roku6vfRIxAheXLeElscUMO+Q
AuxLQwQPcMqnCICzvNaTuIb6ykE+vXKEja2ZcDk7FaoY
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:00 2024 by rpki-client on console-ams.rpki-client.org